JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.249.157.90

74.249.157.90 was found in our database!

This IP was reported 183 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.249.157.90

Whois 74.249.157.90

IP Abuse Reports for 74.249.157.90:

This IP address has been reported a total of 183 times from 136 distinct sources. 74.249.157.90 was first reported on May 19th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 penguin-solutions.at	2026-05-19 18:28:01 (2 weeks ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
Anonymous	2026-05-19 18:26:53 (2 weeks ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇩🇪 FeG Deutschland	2026-05-19 18:26:49 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 24	Exploited Host Web App Attack
🇫🇮 Christopher Hughes	2026-05-19 18:26:08 (2 weeks ago)	[Tue May 19 19:26:06.875604 2026] [proxy_fcgi:error] [pid 1326584:tid 139774895560256] [client 74.24 ... show more [Tue May 19 19:26:06.875604 2026] [proxy_fcgi:error] [pid 1326584:tid 139774895560256] [client 74.249.157.90:1271] AH01071: Got error 'Primary script unknown' [Tue May 19 19:26:07.066240 2026] [proxy_fcgi:error] [pid 1326584:tid 139774811698752] [client 74.249.157.90:1271] AH01071: Got error 'Primary script unknown' [Tue May 19 19:26:07.282629 2026] [proxy_fcgi:error] [pid 1326584:tid 139774786520640] [client 74.249.157.90:1271] AH01071: Got error 'Primary script unknown' [Tue May 19 19:26:07.429878 2026] [proxy_fcgi:error] [pid 1326584:tid 139775042401856] [client 74.249.157.90:1271] AH01071: Got error 'Primary script unknown' [Tue May 19 19:26:08.012816 2026] [proxy_fcgi:error] [pid 1326584:tid 139773872174656] [client 74.249.157.90:1271] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇦🇺 2000cn.com.au	2026-05-19 18:17:53 (2 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-backdoors-attempts	Web App Attack Hacking
🇩🇪 mondor.ro	2026-05-19 18:15:12 (2 weeks ago)	Cluster member 148.251.176.225 (DE/Germany/antares.webyouridea.ro) said, TEMPDENY 74.249.157.90, Rea ... show more Cluster member 148.251.176.225 (DE/Germany/antares.webyouridea.ro) said, TEMPDENY 74.249.157.90, Reason:[74.249.157.90 (US/United States/-), more than 60 Apache 404 hits in the last 3600 secs]; Ports: 80,443; Direction: in; Trigger: LF_CLUSTER; Logs: show less	Port Scan
🇩🇪 stinpriza	2026-05-19 18:07:29 (2 weeks ago)	Web App Attack	Web App Attack
🇺🇸 mnsf	2026-05-19 18:05:24 (2 weeks ago)	Too many Status 40X (14)	Brute-Force Web App Attack
🇨🇭 Origon	2026-05-19 18:04:36 (2 weeks ago)	http-probing - IP: 74.249.157.90 - time="2026-05-19T20:04:36+02:00" level=info msg="(555f66b4f6a745 ... show more http-probing - IP: 74.249.157.90 - time="2026-05-19T20:04:36+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-probing by ip 74.249.157.90 (US/8075) : 4h ban on Ip 74.249.157.90" module=db show less	Web App Attack
Anonymous	2026-05-19 18:02:46 (2 weeks ago)	74.249.157.90 - - [19/May/2026:20:02:26 +0200] "GET /admin.php HTTP/1.1" 404 32795 74.249.157.90 - - ... show more 74.249.157.90 - - [19/May/2026:20:02:26 +0200] "GET /admin.php HTTP/1.1" 404 32795 74.249.157.90 - - [19/May/2026:20:02:28 +0200] "GET /inputs.php HTTP/1.1" 404 29180 74.249.157.90 - - [19/May/2026:20:02:30 +0200] "GET /file.php HTTP/1.1" 404 29181 74.249.157.90 - - [19/May/2026:20:02:32 +0200] "GET /goods.php HTTP/1.1" 404 29181 74.249.157.90 - - [19/May/2026:20:02:33 +0200] "GET /ms-edit.php HTTP/1.1" 404 29181 74.249.157.90 - - [19/May/2026:20:02:35 +0200] "GET /simple.php HTTP/1.1" 404 29182 74.249.157.90 - - [19/May/2026:20:02:37 +0200] "GET /bgymj.php HTTP/1.1" 404 29180 74.249.157.90 - - [19/May/2026:20:02:39 +0200] "GET /wp-content/plugins/twenty/login.php HTTP/1.1" 404 29179 74.249.157.90 - - [19/May/2026:20:02:41 +0200] "GET /404.php HTTP/1.1" 404 29181 74.249.157.90 - - [19/May/2026:20:02:43 +0200] "GET /file3.php HTTP/1.1" 404 29181 ... show less	Web Spam Web App Attack
🇩🇪 TrackerSB	2026-05-19 18:02:42 (2 weeks ago)	74.249.157.90 - "-" [19/May/2026:20:02:37 +0200] "GET /wp-admin/user/12.php HTTP/1.1" 200 2442 "-" " ... show more 74.249.157.90 - "-" [19/May/2026:20:02:37 +0200] "GET /wp-admin/user/12.php HTTP/1.1" 200 2442 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "74.249.157.90" 74.249.157.90 - "-" [19/May/2026:20:02:42 +0200] "GET /wp-admin/maint/index.php HTTP/1.1" 200 2442 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "74.249.157.90" ... show less	Web App Attack
🇩🇪 LRob.fr	2026-05-19 18:00:16 (2 weeks ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇨🇦 Mediashaker	2026-05-19 17:54:54 (2 weeks ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 74.249.157.90 (US/United ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 74.249.157.90 (US/United States/-) show less	Port Scan
🇩🇪 R.G.	2026-05-19 17:51:28 (2 weeks ago)	(ScanningForFiles) Scanning for files triggerd 74.249.157.90 (US/United States/-): 10 in the last 90 ... show more (ScanningForFiles) Scanning for files triggerd 74.249.157.90 (US/United States/-): 10 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
Anonymous	2026-05-19 17:51:02 (2 weeks ago)	Bot / scanning and/or hacking attempts: GET /admin.php HTTP/1.1, GET /inputs.php HTTP/1.1, GET /bgym ... show more Bot / scanning and/or hacking attempts: GET /admin.php HTTP/1.1, GET /inputs.php HTTP/1.1, GET /bgymj.php HTTP/1.1, GET /file3.php HTTP/1.1, GET /404.php HTTP/1.1, GET /file.php HTTP/1.1, GET /simple.php HTTP/1.1, GET /ms-edit.php HTTP/1.1, GET /goods.php HTTP/1.1, GET /wp-content/plugins/twenty/login.php HTTP/1.1, GET /adminfuns.php HTTP/1.1 show less	Hacking Web App Attack

Showing 151 to 165 of 183 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.220.101.150

🇨🇳 115.56.238.174

🇬🇧 89.37.172.135

🇳🇱 45.148.10.151

🇮🇪 185.231.207.151

🇧🇷 179.191.82.115

🇳🇱 172.233.41.45

🇨🇳 171.36.6.158

🇳🇱 103.161.34.59

🇪🇸 88.13.2.250

🇷🇴 80.94.92.184

🇳🇱 45.148.10.152

🇬🇧 35.203.211.29

🇺🇸 157.245.123.148

🇹🇭 118.194.251.145

🇮🇩 103.191.14.210

🇺🇸 50.116.12.48

🇺🇸 47.251.143.167

🇧🇷 45.171.79.165

🇺🇸 24.144.84.83